Axtarış...
Vulnerabilities detected in the global email system by SCISSS
Special Communication and Information Security State Service has discovered three vulnerabilities — CVE-2025-2975, CVE-2025-2976, and CVE-2025-2977 — in the “GFI KerioConnect” global email system that allow remote exploitation of user interface and document processing functionalities. The identified vulnerabilities have been officially confirmed and registered in the National Vulnerability Database (NVD) by the United States National Institute of Standards and Technology (nist.gov) under the same identification codes (CVE-2025-2975, CVE-2025-2976, and CVE-2025-2977).
The software company GFI Software, which provides the global email service and is located in the state of Texas, USA, has been informed about these vulnerabilities.
GFI Software, which has been operating since 1992 and has offices in the USA, the United Kingdom, Germany, the Czech Republic, and other countries, has products used by more than 60,000 organizations and enterprises worldwide.
https://nvd.nist.gov/vuln/detail/CVE-2025-2975
https://nvd.nist.gov/vuln/detail/CVE-2025-2976
https://nvd.nist.gov/vuln/detail/CVE-2025-2977